QwikSec

Security Database

CVE

CWE

Training

CVE-2019-5666

Published: Feb 27, 2019

Modified: Sep 17, 2024

PUBLISHED

Description

NVIDIA Windows GPU Display Driver contains a vulnerability in the kernel mode layer (nvlddmkm.sys) create context command DDI DxgkDdiCreateContext in which the product uses untrusted input when calculating or using an array index, but the product does not validate or incorrectly validates the index to ensure the index references a valid position within the array, which may lead to denial of service or escalation of privileges.

Vendor	Product	Versions
Nvidia Corporation	NVIDIA GPU Graphics Driver	affected `All`

References

https://nvidia.custhelp.com/app/answers/detail/a_id/4772

x_refsource_CONFIRM

http://support.lenovo.com/us/en/solutions/LEN-26250

x_refsource_CONFIRM

https://nvidia.custhelp.com/app/answers/detail/a_id/4797

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.